Home > mailing lists

Re: Any advantage of using SSL with a certificate of authority? - Mailing list pgsql-general

From	Bruce Momjian
Subject	Re: Any advantage of using SSL with a certificate of authority?
Date	November 26, 2013 22:12:34
Msg-id	20131126191230.GB6323@momjian.us Whole thread Raw
In response to	Re: Any advantage of using SSL with a certificate of authority? (John R Pierce <pierce@hogranch.com>)
List	pgsql-general

Tree view

On Tue, Nov 26, 2013 at 10:33:47AM -0800, John R Pierce wrote:
> On 11/26/2013 10:24 AM, Jesus Rafael Sanchez Medrano wrote:
>
>     Looking to implement SSL. Every tutorial/sample I have found uses self
>     signed certificates. Would there be any advantage of using a certificate
>     from a CA such as digicertor rapidssl?
>
>
>
> depends entirely on your use case.    generally, since you control both ends of
> a postgresql connection, there's no advantage to using signed certificates, but
> if you have your own CA already, by all means go ahead and use it.

Yes, definately use your private CA so you can verify the chain.  It is
public CAs that are not useful in this case.

--
  Bruce Momjian  <bruce@momjian.us>        http://momjian.us
  EnterpriseDB                             http://enterprisedb.com

  + Everyone has their own god. +

pgsql-general by date:

From: Vick Khera
Date: 26 November 2013, 21:43:23
Subject: Re: tracking scripts...

From: Alvaro Herrera
Date: 26 November 2013, 22:18:29
Subject: Re: AccessShareLock and Resource Contention

Re: Any advantage of using SSL with a certificate of authority? - Mailing list pgsql-general

Previous

Next